Immutable infrastructure

•Download as PPTX, PDF•

2 likes•1,081 views

kashifrazzaqui

What is immutable infra and how to deploy it.

Technology

Immutable
Infrastructure
Kashif Razzaqui @kashifrazzaqui

What is our typical
infrastructure
Pets
Every server has a name and you
have a relationship
Change anything in-place
Automation is optional
Testing is critical; implicit
Susceptible to drift
Difficult to revert state
Slow to recover from disaster

What is immutable
infrastructure
Cattle
No hard decisions
Recreate on change
Automation is compulsory
Testing is optional, different

Advantages
Can’t drift
Fast recovery from disaster
Easy to revert
Easy to scale
Perfect staging environments
Self documenting

Context
● Kayako is a helpdesk, like Zendesk and Freshdesk
● Tickets for servers at Softlayer
● Chef, SSH
● Many types of servers and components
● Fragile

Not a small toy
example - real
business, real servers

● How do we provision a machine?
● How do we connect various parts?
● How do we release?
● How can we keep costs in control?
● Where have all the services gone?
● Who has access?
How do you do this
with immutability?
Key Questions

Tooling
Build Provision Secure Run Connect

Provisioning a machine
Starts out fine … never ends well

● Moved to AWS
● Hardware, network and managed services provisioned with
Terraform
● Software provisioned with Packer
● Infrastructure as code
How do we provision a machine ?

How do we connect
various parts?
● Terraform describes the infrastructure as
code
● Integrates well with packer and AMIs
● Even works across cloud providers
● Modular
● Preview changes, apply safely

How do we release code?
● Release gets converted to images by Packer
● Terraform makes new servers with new code
● Consul+Nomad orchestrate to switch traffic (canary also supported)
● Terraform takes down old infrastructure
● Rollback is another release OR a nomad task if it was a canary

How can we keep costs in control?
● Nomad optimizes workload for utilization and efficiency
● Easily possible to create infrastructure only on demand (day, night)
● Docker compatible

● Consul
○ Dynamic Service Discovery (DNS + HTTP)
○ Service Health
○ Runtime configuration and orchestration
○ Advanced networking
Where have all the services gone ?

Who has access?
● Tool chain
○ SREs
● SSH
○ No one
● Secret management and delivery
○ Vault

Immutable Infrastructure
Build Provision Secure Run Connect

Questions
@kashifrazzaqui
https://medium.com/@kashifrazzaqui

What's hot

Docker.pptx

balaji257

***** Kubernetes Certification Training: https://www.edureka.co/kubernetes-certification ***** This Edureka tutorial on "Kubernetes vs Docker Swarm" will explain the fundamental differences between the two popular container orchestration tools - Kubernetes and Docker Swarm. The differences between the two have been explained based on the following parameters: 1. Installation & Cluster configuration 2. GUI 3. Scalability 4. Auto-Scaling 5. Load Balancing 6. Updates & Rollbacks 7. Data Volumes 8. Logging & Monitoring DevOps Tutorial Blog Series: https://goo.gl/P0zAfF

Kubernetes vs Docker Swarm | Container Orchestration War | Kubernetes Trainin...

Edureka!

Docker and kubernetes

Dongwon Kim

Nathen Harvey, Chef Automation at scale is the foundation of every successful high velocity organization. Automation requires dynamic infrastructure that is managed as code. Modern infrastructure code means bringing the lessons from software development to your infrastructure. Automation is managed in version control systems, tests drive code development, code moves through a continuous pipeline from the workstation to the production environment. What will this look like in five years? We will see a continued improvement in the way teams work together toward common goals, build more operable applications, and embrace complexity while improving ease-of-use.

Modern Infrastructure Automation

Sonatype

Helm.pptx

SISTechnologies

Tekton Pipelines is an open-source project that focuses on providing a Kubernetes-native, lightweight, easy-to-manage serverless CI/CD framework. Tekton is built for Kubernetes and runs delivery pipelines in pods to scale on demand, and allow teams to fully control their pipelines and dependencies. ArgoCD is a declarative GitOps operator and makes continuous delivery possible by using Git as source of truth for declarative infrastructure and applications. In this session, you will learn how to combine the power of Tekton Pipelines with ArgoCD for a declarative approach to CI/CD based on GitOps principles.

ArgoCD and Tekton: Match made in Kubernetes heaven | DevNation Tech Talk

Red Hat Developers

Galera Cluster DDL and Schema Upgrades 220217

Codership Oy - Creators of Galera Cluster

Trong talk lần này của Grokking, anh Huy sẽ chia sẻ về điểm hay và tác hại của văn hoá chat ở công sở, và đưa ra thêm những lựa chọn khác phù hợp hơn cho từng trường hợp cụ thể. Đối tượng là dành cho các team khi gặp các vấn đề sau: 1. Bạn cảm thấy bỏ rất nhiều thời gian, nhưng lại không làm được gì nhiều vì luôn bị đồng nghiệp nhờ/hỏi khi có công việc gấp 2. Cuối ngày nhìn lại bạn chả nhớ mình làm được gì quan trọng 3. Bạn dành thời gian trao đổi với team rất hăng hái để đưa ra quyết định, nhưng 3 tháng sau lại quên mất tại sao hồi đó quyết định như vậy.. Bài talk sẽ nói về thói quen giao tiếp bất đồng bộ, thói quen ghi lại những gì mình cần nói & cách xây dựng wiki cho team của mình nhằm mục tiêu hạn chế những ảnh hưởng không tốt của việc sử dụng chat. Speaker: Huy Nguyen - CTO @ Holistics

Grokking TechTalk #31: Asynchronous Communications

Grokking VN

You have finally split your big monolith into microservices. Now what? How do you validate a more complex application? And how do you make it scale? Instead of having one CI/CD pipeline, you have multiple. And as the number of microservices increases so does the number of pipelines. Managing pipelines for microservice applications can quickly get out of hand, especially when you try to reuse common pipeline parts between different applications. In this webinar, we will see how you can create CI/CD pipelines designed specifically for microservices and how you can reuse the same pipeline across different applications.

CI/CD for Microservices Best Practices

DevOps.com

Kubernetes 101

Jacopo Nardiello

Kubernetes & Google Kubernetes Engine (GKE)

Akash Agrawal

Introduction to Kubernetes and Google Container Engine (GKE)

Opsta

PGDay.Amsterdam 2018 - Stefan Fercot - Save your data with pgBackRest

PGDay.Amsterdam

Digging into helm

상준 윤

PHP에서 GCM 푸시 빠르게 보내기 (feat. Async / Generator)

Changwan Jun

Analyze corefile and backtraces with GDB for Mysql/MariaDB on Linux - Nilanda...

Mydbops

Script mediator

Neelpawankalita

Kubernetes Introduction

Eric Gustafson

Hands-on Helm

Docker, Inc.

Percona XtraDB Cluster is a high availability and high scalability solution for MySQL clustering. Percona XtraDB Cluster integrates Percona Server with the Galera synchronous replication library in a single product package which enables you to create a cost-effective MySQL cluster. Since three years during Percona Live we initiate people to this technology... but what's next ? This tutorial is the continuation. It targets users that already have experience with PXC and want to go further. This tutorial will cover the following topics: - monitoring and trending - problem solving - limitations, when not to choose for PXC - how to test ? (benchmark) - schema changes - backups - multi datacenter - advanced load balancing with HA Pproxy and Maxscale - fine tune some important variables like galera cache, flow control limit, ...

Advanced Percona XtraDB Cluster in a nutshell... la suite

Kenny Gryp

What's hot (20)

Docker.pptx

Kubernetes vs Docker Swarm | Container Orchestration War | Kubernetes Trainin...

Docker and kubernetes

Modern Infrastructure Automation

Helm.pptx

ArgoCD and Tekton: Match made in Kubernetes heaven | DevNation Tech Talk

Galera Cluster DDL and Schema Upgrades 220217

Grokking TechTalk #31: Asynchronous Communications

CI/CD for Microservices Best Practices

Kubernetes 101

Kubernetes & Google Kubernetes Engine (GKE)

Introduction to Kubernetes and Google Container Engine (GKE)

PGDay.Amsterdam 2018 - Stefan Fercot - Save your data with pgBackRest

Digging into helm

PHP에서 GCM 푸시 빠르게 보내기 (feat. Async / Generator)

Analyze corefile and backtraces with GDB for Mysql/MariaDB on Linux - Nilanda...

Script mediator

Kubernetes Introduction

Hands-on Helm

Advanced Percona XtraDB Cluster in a nutshell... la suite

Similar to Immutable infrastructure

TubeMogul grew from few servers to over two thousands servers and handling over one trillion http requests a month, processed in less than 50ms each. To keep up with the fast growth, the SRE team had to implement an efficient Continuous Delivery infrastructure that allowed to do over 10,000 puppet deployment and 8,500 application deployment in 2014. In this presentation, we will cover the nuts and bolts of the TubeMogul operations engineering team and how they overcome challenges.

USENIX LISA15: How TubeMogul Handles over One Trillion HTTP Requests a Month

Nicolas Brousse

Automatic Provisioning of Consul & Vault

Misha Manulis

Building out Reactive systems can be a lot of work. There’s a lot of infrastructure to set up and designing a system to be resilient, responsive, and elastic requires experience and time that not every team has. We built Inngest to be an open source, cloud-native system that enables anyone to build Reactive architectures. Designed to be pluggable with your favorite messaging service like Kafka, NATS or PubSub and your favorite container orchestration like Kubernetes, Nomad, or ECS. We’ll walk through how the system was designed, how you can deploy it yourself, and the plans to make it runnable on any cloud (and even your laptop!).

Building a Pluggable, Cloud-native Event-driven Serverless Architecture - Rea...

Dan Farrelly

Truemotion Adventures in Containerization

Ryan Hunter

Idi2018 - Serverless does not mean Opsless

Linuxaria.com

AWS Techniques and lessons writing a minimal cost gitlab runner

Anthony Scata

We have been talking about Serverless a lot lately and there are a couple of reasons for that. Serverless computing will provide greater scalability, more flexibility, and quicker time to release at reduced cost and this is the reason everybody is after it. Is serverless architecture enough to drive all this we talked about just now? The answer is no, of course. Also, State management has been absolutely challenging in serverless computing but Cloudstate will make it possible for us, wondering how? Keep reading the article until and you will learn it. The Lightbend’s Cloudstate which was released in August last year(2019) has proved to be a game-changer here as it provides stateful serverless computing, Cloudstate brings powerful new distributed and durable state management primitives based on Akka to the Serverless paradigm. Serving of stateful functions powered by Akka Cluster. That was all for the introduction, let’s talk about Cloudstate in detail below.

Introduction to Akka Serverless

Knoldus Inc.

DevOpsDays Tel Aviv DEC 2022 | Building A Cloud-Native Platform Brick by Bric...

Haggai Philip Zagury

Creating pools of Virtual Machines - ApacheCon NA 2013

Andrei Savu

Dokku your own heroku 21

Amoniac OÜ

Dokku - your own heroku

Aleksandr Simonov

Docker in Production at the Aurora Team

Haufe-Lexware GmbH & Co KG

The Marketplace data team at Uber has built a scalable complex event processing platform to solve many challenging real time data needs for various Uber products. This platform has been in production for almost a year and it has proven to be very flexible to solve many use cases. In this talk, we will share in detail the design and architecture of the platform, and how we employ Samza, Kafka, and Siddhi at scale. This slides was presented at Stream Processing Meetup @ LinkedIn on June 15 2016.

Scalable complex event processing on samza @UBER

Shuyi Chen

Cpp In Soa

WSO2

Q Con New York 2015 Presentation - Conjur

conjur_inc

giip service brochure (en) 150705

Lowy Shin

Apache Provisionr (incubating) - Bucharest JUG 10

Andrei Savu

Creating an open source load balancer for S3

Anders Bruvik

Kafka Summit NYC 2017 - Scalable Real-Time Complex Event Processing @ Uber

confluent

Come hear about our container management platform, Titus. Titus launches over 2 millions containers per week for service and batch workloads. Come to learn what applications are powered by Titus and what values the developers are getting from containers. Also, we will cover some of the Titus unique aspects of reliability, control plane, scheduling, and container runtime technologies. We will also cover our integrations with Netflix systems such as Spinnaker as well as Amazon concepts such as VPC and IAM. https://www.meetup.com/Netflix-Open-Source-Platform/events/247776324/

NetflixOSS Meetup S6E1 - Titus & Containers

aspyker

Similar to Immutable infrastructure (20)

USENIX LISA15: How TubeMogul Handles over One Trillion HTTP Requests a Month

Automatic Provisioning of Consul & Vault

Building a Pluggable, Cloud-native Event-driven Serverless Architecture - Rea...

Truemotion Adventures in Containerization

Idi2018 - Serverless does not mean Opsless

AWS Techniques and lessons writing a minimal cost gitlab runner

Introduction to Akka Serverless

DevOpsDays Tel Aviv DEC 2022 | Building A Cloud-Native Platform Brick by Bric...

Creating pools of Virtual Machines - ApacheCon NA 2013

Dokku your own heroku 21

Dokku - your own heroku

Docker in Production at the Aurora Team

Scalable complex event processing on samza @UBER

Cpp In Soa

Q Con New York 2015 Presentation - Conjur

giip service brochure (en) 150705

Apache Provisionr (incubating) - Bucharest JUG 10

Creating an open source load balancer for S3

Kafka Summit NYC 2017 - Scalable Real-Time Complex Event Processing @ Uber

NetflixOSS Meetup S6E1 - Titus & Containers

Recently uploaded

How to convert PDF to text with Nanonets

naman860154

A Domino Admins Adventures (Engage 2024)

Gabriella Davis

Imagine a world where information flows as swiftly as thought itself, making decision-making as fluid as the data driving it. Every moment is critical, and the right tools can significantly boost your organization’s performance. The power of real-time data automation through FME can turn this vision into reality. Aimed at professionals eager to leverage real-time data for enhanced decision-making and efficiency, this webinar will cover the essentials of real-time data and its significance. We’ll explore: FME’s role in real-time event processing, from data intake and analysis to transformation and reporting An overview of leveraging streams vs. automations FME’s impact across various industries highlighted by real-life case studies Live demonstrations on setting up FME workflows for real-time data Practical advice on getting started, best practices, and tips for effective implementation Join us to enhance your skills in real-time data automation with FME, and take your operational capabilities to the next level.

From Event to Action: Accelerate Your Decision Making with Real-Time Automation

Safe Software

Abhishek Deb(1), Mr Abdul Kalam(2) M. Des (UX) , School of Design, DIT University , Dehradun. This paper explores the future potential of AI-enabled smartphone processors, aiming to investigate the advancements, capabilities, and implications of integrating artificial intelligence (AI) into smartphone technology. The research study goals consist of evaluating the development of AI in mobile phone processors, analyzing the existing state as well as abilities of AI-enabled cpus determining future patterns as well as chances together with reviewing obstacles as well as factors to consider for more growth.

Exploring the Future Potential of AI-Enabled Smartphone Processors

debabhi2

Building Digital Trust in a Digital Economy Veronica Tan, Director - Cyber Security Agency of Singapore Apidays Singapore 2024: Connecting Customers, Business and Technology (April 17 & 18, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...

apidays

🐬 The future of MySQL is Postgres 🐘

RTylerCroy

Tech Trends Report 2024 Future Today Institute.pdf

hans926745

BooK Now Call us at +918448380779 to hire a gorgeous and seductive call girl for sex. Take a Delhi Escort Service. The help of our escort agency is mostly meant for men who want sexual Indian Escorts In Delhi NCR. It should be noted that any impersonator will get 100 attention from our Young Girls Escorts in Delhi. They will assume the position of reliable allies. VIP Call Girl With Original Photos Book Tonight +918448380779 Our Cheap Price 1 Hour not available 2 Hours 5000 Full Night 8000 TAG: Call Girls in Delhi, Noida, Gurgaon, Ghaziabad, Connaught Place, Greater Kailash Delhi, Lajpat Nagar Delhi, Mayur Vihar Delhi, Chanakyapuri Delhi, New Friends Colony Delhi, Majnu Ka Tilla, Karol Bagh, Malviya Nagar, Saket, Khan Market, Noida Sector 18, Noida Sector 76, Noida Sector 51, Gurgaon Mg Road, Iffco Chowk Gurgaon, Rajiv Chowk Gurgaon All Delhi Ncr Free Home Deliver

08448380779 Call Girls In Civil Lines Women Seeking Men

Delhi Call girls

[2024]Digital Global Overview Report 2024 Meltwater.pdf

hans926745

Boost Fertility New Invention Ups Success Rates.pdf

sudhanshuwaghmare1

08448380779 Call Girls In Diplomatic Enclave Women Seeking Men

Delhi Call girls

In this session, we will delve into strategic approaches for optimizing knowledge management within Microsoft 365, amidst the evolving landscape of Copilot. From leveraging automatic metadata classification and permission governance with SharePoint Premium, to unlocking Viva Engage for the cultivation of knowledge and communities, you will gain actionable insights to bolster your organization's knowledge-sharing initiatives. In this session, we will also explore how to facilitate solutions to enable your employees to find answers and expertise within Microsoft 365. You will leave equipped with practical techniques and a deeper understanding of how there is more to effective knowledge management than just enabling Copilot, but building actual solutions to prepare the knowledge that Copilot and your employees can use.

Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...

Drew Madelung

How to Troubleshoot Apps for the Modern Connected Worker

ThousandEyes

As privacy and data protection regulations evolve rapidly, organizations operating in multiple jurisdictions face mounting challenges to ensure compliance and safeguard customer data. With state-specific privacy laws coming up in multiple states this year, it is essential to understand what their unique data protection regulations will require clearly. How will data privacy evolve in the US in 2024? How to stay compliant? Our panellists will guide you through the intricacies of these states' specific data privacy laws, clarifying complex legal frameworks and compliance requirements. This webinar will review: - The essential aspects of each state's privacy landscape and the latest updates - Common compliance challenges faced by organizations operating in multiple states and best practices to achieve regulatory adherence - Valuable insights into potential changes to existing regulations and prepare your organization for the evolving landscape

TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments

TrustArc

This presentations targets students or working professionals. You may know Google for search, YouTube, Android, Chrome, and Gmail, but did you know Google has many developer tools, platforms & APIs? This comprehensive yet still high-level overview outlines the most impactful tools for where to run your code, store & analyze your data. It will also inspire you as to what's possible. This talk is 50 minutes in length.

Powerful Google developer tools for immediate impact! (2023-24 C)

wesley chun

08448380779 Call Girls In Greater Kailash - I Women Seeking Men

Delhi Call girls

Three things you will take away from the session: • How to run an effective tenant-to-tenant migration • Best practices for before, during, and after migration • Tips for using migration as a springboard to prepare for Copilot in Microsoft 365 Main ideas: Migration Overview: The presentation covers the current reality of cross-tenant migrations, the triggers, phases, best practices, and benefits of a successful tenant migration Considerations: When considering a migration, it is important to consider the migration scope, performance, customization, flexibility, user-friendly interface, automation, monitoring, support, training, scalability, data integrity, data security, cost, and licensing structure Next Wave: The next wave of change includes the launch of Copilot, which requires businesses to be prepared for upcoming changes related to Copilot and the cloud, and to consolidate data and tighten governance ShareGate: ShareGate can help with pre-migration analysis, configurable migration tool, and automated, end-user driven collaborative governance

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff

sammart93

In an era where artificial intelligence (AI) stands at the forefront of business innovation, Information Architecture (IA) is at the core of functionality. See “There’s No AI Without IA” – (from 2016 but even more relevant today) Understanding and leveraging how Information Architecture (IA) supports AI synergies between knowledge engineering and prompt engineering is critical for senior leaders looking to successfully deploy AI for internal and externally facing knowledge processes. This webinar be a high-level overview of the methodologies that can elevate AI-driven knowledge processes supporting both employees and customers. Core Insights Include: Strategic Knowledge Engineering: Delve into how structuring AI's knowledge base is required to prevent hallucinations, enable contextual retrieval of accurate information. This will include discussion of gold standard libraries of use cases support testing various LLMs and structures and configurations of knowledge base. Precision in Prompt Engineering: Learn the art of crafting prompts that direct AI to deliver targeted, relevant responses, thereby optimizing customer experiences and business outcomes. Unified Approach for Enhanced AI Performance: Explore the intersection of knowledge and prompt engineering to develop AI systems that are not only more responsive but also aligned with overarching business strategies. Guiding Principles for Implementation: Equip yourself with best practices, ethical guidelines, and strategic considerations for embedding these technologies into your business ecosystem effectively. This webinar is designed to empower business and technology leaders with the knowledge to harness the full potential of AI, ensuring their organizations not only keep pace with digital transformation but lead the charge. Join us to map a roadmap to fully leverage Information Architecture (IA) and AI chart a course towards a future where AI is a key pillar of strategic innovation and business success.

EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx

Earley Information Science

Finology Group – Insurtech Innovation Award 2024

The Digital Insurer

Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024

The Digital Insurer

Recently uploaded (20)

How to convert PDF to text with Nanonets

A Domino Admins Adventures (Engage 2024)

From Event to Action: Accelerate Your Decision Making with Real-Time Automation

Exploring the Future Potential of AI-Enabled Smartphone Processors

Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...

🐬 The future of MySQL is Postgres 🐘

Tech Trends Report 2024 Future Today Institute.pdf

08448380779 Call Girls In Civil Lines Women Seeking Men

[2024]Digital Global Overview Report 2024 Meltwater.pdf

Boost Fertility New Invention Ups Success Rates.pdf

08448380779 Call Girls In Diplomatic Enclave Women Seeking Men

Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...

How to Troubleshoot Apps for the Modern Connected Worker

TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments

Powerful Google developer tools for immediate impact! (2023-24 C)

08448380779 Call Girls In Greater Kailash - I Women Seeking Men

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff

EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx

Finology Group – Insurtech Innovation Award 2024

Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024

Immutable infrastructure

1. Immutable Infrastructure Kashif Razzaqui @kashifrazzaqui

2. What is our typical infrastructure Pets Every server has a name and you have a relationship Change anything in-place Automation is optional Testing is critical; implicit Susceptible to drift Difficult to revert state Slow to recover from disaster

3. Mutable Infrastructure

4. What is immutable infrastructure Cattle No hard decisions Recreate on change Automation is compulsory Testing is optional, different

5. Advantages Can’t drift Fast recovery from disaster Easy to revert Easy to scale Perfect staging environments Self documenting

6. Replace not repair

7. Immutable infra @ Kayako A case study

8. Context ● Kayako is a helpdesk, like Zendesk and Freshdesk ● Tickets for servers at Softlayer ● Chef, SSH ● Many types of servers and components ● Fragile

9. Not a small toy example - real business, real servers

10. ● How do we provision a machine? ● How do we connect various parts? ● How do we release? ● How can we keep costs in control? ● Where have all the services gone? ● Who has access? How do you do this with immutability? Key Questions

11. Tools

12. Tooling Build Provision Secure Run Connect

13. ● How do we provision a machine? ● How do we connect various parts? ● How do we release? ● How can we keep costs in control? ● Where have all the services gone? ● Who has access? How do you do this with immutability? Key Questions Again

14. Provisioning a machine Starts out fine … never ends well

15. ● Moved to AWS ● Hardware, network and managed services provisioned with Terraform ● Software provisioned with Packer ● Infrastructure as code How do we provision a machine ?

16. How do we connect various parts? ● Terraform describes the infrastructure as code ● Integrates well with packer and AMIs ● Even works across cloud providers ● Modular ● Preview changes, apply safely

17. Make anything but with standard parts

18. Easy Modules

19. Lego like

20. How do we release code?

21. Blue Green Deployment

22. How do we release code? ● Release gets converted to images by Packer ● Terraform makes new servers with new code ● Consul+Nomad orchestrate to switch traffic (canary also supported) ● Terraform takes down old infrastructure ● Rollback is another release OR a nomad task if it was a canary

23. How can we keep costs in control? ● Nomad optimizes workload for utilization and efficiency ● Easily possible to create infrastructure only on demand (day, night) ● Docker compatible

24. ● Consul ○ Dynamic Service Discovery (DNS + HTTP) ○ Service Health ○ Runtime configuration and orchestration ○ Advanced networking Where have all the services gone ?

25. Who has access? ● Tool chain ○ SREs ● SSH ○ No one ● Secret management and delivery ○ Vault

26. Immutable Infrastructure Build Provision Secure Run Connect

27. Questions @kashifrazzaqui https://medium.com/@kashifrazzaqui

Editor's Notes

Change in place Software and hardware SSH Configuration Automation is optional Gaps can be filled by hand Testing is critical Can’t be sure all non-automated parts are playing along Test for functionality AND health What is actually in production may not be explicitly tested Susceptible to drift Same type of server might have different software versions or hardware Difficult to revert state Also because last state is not actually well known
Recreate on change No refactoring Automation is compulsory No SSH, manual not possible Testing is optional, different You don’t test for functionality, you test only for health Can’t Drift
Chef, SSH Optional automation Mistyped commands etc Types of servers Load Balancer, Application Server, Worker Server, Elastic Search Cluster, Redis, MySQL servers, AMQP Servers, Service specific servers Queues, Search, Caching, Databases, DNS, CDN
AWS - Provisioning Hashicorp - Infra as code
Endpoints Components/Sub Systems Architecture
Endpoints Components/Sub Systems Architecture

Immutable infrastructure

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Similar to Immutable infrastructure

Similar to Immutable infrastructure (20)

Recently uploaded

Recently uploaded (20)

Immutable infrastructure

Editor's Notes